Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2744 matches found

Ubuntu
Ubuntuadded 2024/07/15 11:27 a.m.297 views

USN-6897-1: Ghostscript vulnerabilities

It was discovered that Ghostscript incorrectly handled certain long PDF filter names. An attacker could possibly use this issue to cause Ghostscript to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. CVE-2024-29506 It was discovered that...

8.8CVSS6.5AI score0.0215EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2024/07/15 1:16 a.m.25 views

Important: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

8.8CVSS7.8AI score0.00703EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2024/07/15 12:0 a.m.39 views

RHEL 7 : ghostscript (RHSA-2024:4549)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4549 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats ...

8.8CVSS8.6AI score0.00703EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/07/15 12:0 a.m.14 views

RHEL 9 : ghostscript (RHSA-2024:4541)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4541 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats ...

8.8CVSS8.6AI score0.00703EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/07/15 12:0 a.m.12 views

RHEL 8 : ghostscript (RHSA-2024:4527)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4527 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats ...

8.8CVSS8.6AI score0.00703EPSS
Exploits0References4
OSV
OSVadded 2024/07/05 11:21 a.m.2 views

CLSA-2024-1720178510 cups: Fix of CVE-2023-4504

CVE-2023-4504: scanps: check for null terminator after backslash character...

7CVSS7.1AI score0.00035EPSS
Exploits2References1
NVD
NVDadded 2024/07/03 7:15 p.m.14 views

CVE-2024-33869

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command output filename...

5.3CVSS0.00014EPSS
Exploits0References2
NVD
NVDadded 2024/07/03 7:15 p.m.17 views

CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

8.8CVSS0.00703EPSS
Exploits0References3
OSV
OSVadded 2024/07/03 7:15 p.m.1 views

ALPINE-CVE-2024-33869

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command output filename...

5.3CVSS7.3AI score0.00014EPSS
Exploits0References1
NVD
NVDadded 2024/07/03 7:15 p.m.12 views

CVE-2024-33870

An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal via a crafted PostScript document to arbitrary files if the current directory is in the permitted paths. For example, there can be a transformation of ../../foo to ./../../foo and this will grant access if ./ i...

6.3CVSS0.00079EPSS
Exploits0References2
OSV
OSVadded 2024/07/03 7:15 p.m.1 views

DEBIAN-CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

8.8CVSS8.8AI score0.00703EPSS
Exploits0References1
OSV
OSVadded 2024/07/03 7:15 p.m.1 views

ALPINE-CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

8.8CVSS8AI score0.00703EPSS
Exploits0References1
OSV
OSVadded 2024/07/03 7:15 p.m.2 views

DEBIAN-CVE-2024-33869

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command output filename...

5.3CVSS6.5AI score0.00014EPSS
Exploits0References1
OSV
OSVadded 2024/07/03 7:15 p.m.0 views

ALPINE-CVE-2024-33870

An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal via a crafted PostScript document to arbitrary files if the current directory is in the permitted paths. For example, there can be a transformation of ../../foo to ./../../foo and this will grant access if ./ i...

6.3CVSS7AI score0.00079EPSS
Exploits0References1
OSV
OSVadded 2024/07/03 7:15 p.m.25 views

CVE-2024-33869

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command output filename...

5.3CVSS6.8AI score
Exploits0References2
OSV
OSVadded 2024/07/03 7:15 p.m.16 views

CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

8.8CVSS7.5AI score
Exploits0References3
OSV
OSVadded 2024/07/03 7:15 p.m.1 views

DEBIAN-CVE-2024-33870

An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal via a crafted PostScript document to arbitrary files if the current directory is in the permitted paths. For example, there can be a transformation of ../../foo to ./../../foo and this will grant access if ./ i...

6.3CVSS7AI score0.00079EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/07/03 12:0 a.m.18 views

CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

0.00703EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2024/07/03 12:0 a.m.24 views

CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

7.5AI score0.00703EPSS
Exploits0References3
Cvelist
Cvelistadded 2024/07/03 12:0 a.m.18 views

CVE-2024-33869

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command output filename...

0.00014EPSS
Exploits0References2
Rows per page
Query Builder